CVE-2025-3730

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions PyTorch version 2.6.0

Description A problematic issue was found in the torch.nn.functional.ctc loss function, located in the file aten/src/ATen/native/LossCTC.cpp. This issue leads to denial of service and can be exploited locally.

Recommendations For PyTorch version 2.6.0, apply the patch 46fc5d8e360127361211cb237d5f9eef0223e567 to fix this issue. As a temporary workaround, consider disabling the torch.nn.functional.ctc loss function until the patch is applied.

Exploit

Fix

DoS

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

AZL-60500

AZL-60577

BIT-PYTORCH-2025-3730

CVE-2025-3730

GHSA-887C-MR87-CXWP

Affected Products

Debian

Pytorch

CVE-2025-3730

Weakness Enumeration

Related Identifiers

Affected Products

References · 23